Period
to 17 October 2018

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 17 October 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
17 Oct 2018
Same period 2017 Same period 2016
Rank 484 420 372
Rank change year-on-year -64 -48 +15
Contract jobs citing PCI DSS 467 535 665
As % of all contract IT jobs advertised in the UK 0.45% 0.54% 0.62%
As % of the Quality Assurance & Compliance category 4.16% 4.38% 5.44%
Number of daily rates quoted 312 328 431
UK median daily rate £488 £475 £463
Median daily rate % change year-on-year +2.63% +2.70% +2.78%
10th Percentile £350 £313 £325
90th Percentile £661 £627 £588
UK excluding London median daily rate £475 £475 £450
% change year-on-year - +5.56% -
Number of hourly rates quoted 0 1 5
UK median hourly rate - £30.00 £27.62
Median hourly rate % change year-on-year - +8.62% -30.08%
UK excluding London median hourly rate - £30.00 £27.62
% change year-on-year - +8.62% -

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,235 12,226 12,232
As % of all contract IT jobs advertised in the UK 10.89% 12.31% 11.47%
Number of daily rates quoted 7,115 8,008 7,928
UK median daily rate £450 £438 £413
Median daily rate % change year-on-year +2.86% +6.06% +3.13%
10th Percentile £250 £256 £225
90th Percentile £625 £630 £600
UK excluding London median daily rate £400 £400 £375
% change year-on-year - +6.67% -1.32%
Number of hourly rates quoted 398 367 444
UK median hourly rate £21.76 £20.00 £22.67
Median hourly rate % change year-on-year +8.80% -11.77% +5.19%
10th Percentile £11.21 £10.63 £10.50
90th Percentile £50.00 £47.88 £47.50
UK excluding London median hourly rate £21.88 £20.00 £25.00
% change year-on-year +9.40% -20.00% +16.01%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 17 October 2018.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 17 October 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -65 435 £500 +5.26% 140
UK excluding London -74 264 £475 - 103
London -7 192 £513 +2.50% 43
South East -47 98 £520 +13.04% 21
North of England -29 56 £463 +8.82% 33
South West -21 35 £455 -9.00% 15
Yorkshire +4 32 £488 +50.00% 11
Midlands -15 29 £390 -2.50% 23
East of England -25 24 £494 +3.95% 5
North West -35 21 £433 -8.95% 20
East Midlands +8 15 £225 -41.94% 5
Scotland -20 15 £405 -26.36% 5
West Midlands -16 14 £400 - 17
Wales -17 7 £475 -20.83% 1
North East -1 3 £360 -15.29% 2

For the 6 months to 17 October 2018, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for PCI DSS.

1 212 (45.40%) ISO/IEC 27001
2 211 (45.18%) Information Security
3 158 (33.83%) CISSP
4 132 (28.27%) GDPR
5 110 (23.55%) CISM
6 108 (23.13%) Finance
7 85 (18.20%) Security Architecture
8 83 (17.77%) Firewall
9 79 (16.92%) Risk Management
10 77 (16.49%) Retail
11 75 (16.06%) CISA
12 72 (15.42%) Agile Software Development
13 69 (14.78%) Cybersecurity
14 64 (13.70%) Data Protection
15 58 (12.42%) Management Information System
16 57 (12.21%) Amazon AWS
17 53 (11.35%) Microsoft
18 51 (10.92%) SIEM
19 49 (10.49%) Degree
20 48 (10.28%) Project Management
20 48 (10.28%) Linux
20 48 (10.28%) Stakeholder Management
21 45 (9.64%) TOGAF
21 45 (9.64%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
22 44 (9.42%) ITIL
23 43 (9.21%) DevOps
24 42 (8.99%) Windows
25 41 (8.78%) Sarbanes-Oxley
26 39 (8.35%) Cisco
26 39 (8.35%) Microsoft Azure

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 14 (3.00%) IIS
2 12 (2.57%) Apache
3 9 (1.93%) CMS
4 7 (1.50%) Tomcat
5 6 (1.28%) Confluence
6 5 (1.07%) JBoss
7 4 (0.86%) nginx
8 3 (0.64%) MS Exchange
9 2 (0.43%) Oracle HTTP Server
9 2 (0.43%) Oracle SOA Suite
9 2 (0.43%) SharePoint
9 2 (0.43%) Skype for Business
9 2 (0.43%) WebLogic
9 2 (0.43%) WebLogic Portal
10 1 (0.21%) Exchange Server 2003
10 1 (0.21%) Exchange Server 2013
10 1 (0.21%) SAS
Applications
1 11 (2.36%) Microsoft Office
2 6 (1.28%) Microsoft Project
3 2 (0.43%) MS Visio
4 1 (0.21%) Microsoft Excel
4 1 (0.21%) Microsoft PowerPoint
4 1 (0.21%) Spreadsheet
Business Applications
1 5 (1.07%) Payment Gateway
2 2 (0.43%) Dynamics NAV
2 2 (0.43%) Magento
2 2 (0.43%) Oracle EBS
3 1 (0.21%) Northgate Housing
Cloud Services
1 57 (12.21%) Amazon AWS
2 39 (8.35%) Microsoft Azure
3 14 (3.00%) Office 365
4 12 (2.57%) SaaS
5 11 (2.36%) Google Cloud Platform
6 10 (2.14%) Serverless
7 7 (1.50%) Azure Functions
7 7 (1.50%) Virtual Private Cloud
8 6 (1.28%) PaaS
8 6 (1.28%) Sumo Logic
9 5 (1.07%) IaaS
10 4 (0.86%) GitHub
11 3 (0.64%) AWS Lambda
11 3 (0.64%) Azure Data Factory
11 3 (0.64%) Google Analytics
12 2 (0.43%) AWS CloudFormation
12 2 (0.43%) Cloudflare
13 1 (0.21%) Amazon CloudWatch
13 1 (0.21%) Amazon ELB
13 1 (0.21%) Azure Active Directory
Communications & Networking
1 83 (17.77%) Firewall
2 32 (6.85%) Network Security
3 21 (4.50%) DNS
3 21 (4.50%) VPN
4 19 (4.07%) Intrusion Detection
5 18 (3.85%) WAN
6 15 (3.21%) LAN
7 11 (2.36%) Internet
8 8 (1.71%) TCP/IP
8 8 (1.71%) WLAN
9 7 (1.50%) Cisco ASA
9 7 (1.50%) DHCP
9 7 (1.50%) HTTP
10 6 (1.28%) VoIP
10 6 (1.28%) Wireless
11 5 (1.07%) BGP
11 5 (1.07%) IPsec
11 5 (1.07%) NFC
11 5 (1.07%) OSPF
11 5 (1.07%) SSH
Database & Business Intelligence
1 18 (3.85%) SQL Server
2 8 (1.71%) Oracle Database
3 7 (1.50%) Big Data
3 7 (1.50%) Data Warehouse
3 7 (1.50%) Relational Database
4 6 (1.28%) SQL Server Integration Services
4 6 (1.28%) SQL Server Reporting Services
5 5 (1.07%) Azure SQL Data Warehouse
5 5 (1.07%) Power BI
5 5 (1.07%) Qlik Sense
6 3 (0.64%) Oracle Database 11g
6 3 (0.64%) SQL Server 2016
7 2 (0.43%) Apache Cassandra
7 2 (0.43%) DB2
7 2 (0.43%) InterSystems Cache
7 2 (0.43%) MongoDB
7 2 (0.43%) MySQL
7 2 (0.43%) NoSQL
7 2 (0.43%) Oracle BI EE
7 2 (0.43%) Oracle Reports
Development Applications
1 17 (3.64%) JIRA
2 12 (2.57%) Git (software)
3 10 (2.14%) SonarQube
4 7 (1.50%) Jenkins
5 4 (0.86%) Visual Studio
6 2 (0.43%) Atlassian Bamboo
6 2 (0.43%) Oracle Forms
6 2 (0.43%) ProC
6 2 (0.43%) TeamCity
7 1 (0.21%) Maven
7 1 (0.21%) Sonatype Nexus
7 1 (0.21%) Subversion
General
1 108 (23.13%) Finance
2 77 (16.49%) Retail
3 31 (6.64%) Legal
4 27 (5.78%) Banking
5 17 (3.64%) Telecoms
6 14 (3.00%) Marketing
7 10 (2.14%) Law
8 6 (1.28%) Dutch Language
9 5 (1.07%) Manufacturing
10 4 (0.86%) Back Office
11 3 (0.64%) Electronics
11 3 (0.64%) Financial Institution
11 3 (0.64%) Games
12 2 (0.43%) Billing
12 2 (0.43%) Publishing
13 1 (0.21%) Digital Economy
13 1 (0.21%) Retail Banking
Job Titles
1 96 (20.56%) Consultant
2 81 (17.34%) Architect
3 77 (16.49%) Security Consultant
4 61 (13.06%) Analyst
5 60 (12.85%) Security Architect
6 53 (11.35%) Security Manager
7 33 (7.07%) Information Security Consultant
7 33 (7.07%) Security Analyst
8 26 (5.57%) Information Security Manager
9 24 (5.14%) Information Manager
9 24 (5.14%) Project Manager
10 22 (4.71%) Business Analyst
11 20 (4.28%) Security Engineer
12 17 (3.64%) Developer
13 13 (2.78%) Security Officer
13 13 (2.78%) Solutions Architect
14 12 (2.57%) Administrator
14 12 (2.57%) CISSP Consultant
14 12 (2.57%) Security Specialist
15 11 (2.36%) IT Analyst
Libraries, Frameworks & Software Standards
1 24 (5.14%) Web Services
2 16 (3.43%) .NET
3 14 (3.00%) RESTful
4 13 (2.78%) Middleware
5 9 (1.93%) HTML
5 9 (1.93%) HTML5
6 8 (1.71%) ASP.NET Web API
7 7 (1.50%) LAMP
7 7 (1.50%) React
8 6 (1.28%) OAuth
8 6 (1.28%) SAML
9 3 (0.64%) JSON
9 3 (0.64%) Node.js
9 3 (0.64%) OpenID
9 3 (0.64%) Oracle GoldenGate
10 2 (0.43%) .NET Core
10 2 (0.43%) ASP.NET
10 2 (0.43%) CSS
10 2 (0.43%) J2EE
10 2 (0.43%) OC4J
Miscellaneous
1 58 (12.42%) Management Information System
2 30 (6.42%) Analytical Skills
2 30 (6.42%) Data Centre
3 26 (5.57%) PKI
4 25 (5.35%) Data Protection Act
5 19 (4.07%) Computer Science
5 19 (4.07%) Cyberthreat
6 14 (3.00%) Public Cloud
7 12 (2.57%) Self-Motivation
8 10 (2.14%) Driving Licence
8 10 (2.14%) User Experience
9 9 (1.93%) Distributed Denial-of-Service
10 7 (1.50%) CESG
10 7 (1.50%) Private Cloud
11 6 (1.28%) Embedded Systems
11 6 (1.28%) Mobile Payment
11 6 (1.28%) Smartcard
12 5 (1.07%) EPoS
12 5 (1.07%) Fintech
13 4 (0.86%) FMCG
Operating Systems
1 48 (10.28%) Linux
2 42 (8.99%) Windows
3 28 (6.00%) Unix
4 15 (3.21%) Red Hat Enterprise Linux
5 12 (2.57%) Windows Server
6 7 (1.50%) Android
6 7 (1.50%) Apple iOS
6 7 (1.50%) Solaris
7 4 (0.86%) Debian
7 4 (0.86%) Windows Server 2008
8 3 (0.64%) Windows 10
9 2 (0.43%) Oracle Linux
10 1 (0.21%) Windows 7
10 1 (0.21%) Windows Server 2012
Processes & Methodologies
1 211 (45.18%) Information Security
2 85 (18.20%) Security Architecture
3 79 (16.92%) Risk Management
4 72 (15.42%) Agile Software Development
5 69 (14.78%) Cybersecurity
6 64 (13.70%) Data Protection
7 51 (10.92%) SIEM
8 48 (10.28%) Project Management
8 48 (10.28%) Stakeholder Management
9 45 (9.64%) TOGAF
10 44 (9.42%) ITIL
11 43 (9.21%) DevOps
12 34 (7.28%) Security Management
12 34 (7.28%) Vulnerability Management
13 32 (6.85%) E-Commerce
14 28 (6.00%) Penetration Testing
15 27 (5.78%) Problem-Solving
15 27 (5.78%) Waterfall
16 26 (5.57%) Data Security
16 26 (5.57%) SDLC
Programming Languages
1 20 (4.28%) Java
2 12 (2.57%) C#
2 12 (2.57%) Perl
2 12 (2.57%) SQL
3 10 (2.14%) Python
4 9 (1.93%) JavaScript
4 9 (1.93%) PowerShell
5 5 (1.07%) Apple Swift
5 5 (1.07%) Go
5 5 (1.07%) Kotlin
6 4 (0.86%) C
6 4 (0.86%) Ruby
7 3 (0.64%) PHP
7 3 (0.64%) PL/SQL
7 3 (0.64%) Shell Script
8 2 (0.43%) Bash Shell
9 1 (0.21%) C++
9 1 (0.21%) T-SQL
Qualifications
1 158 (33.83%) CISSP
2 110 (23.55%) CISM
3 75 (16.06%) CISA
4 49 (10.49%) Degree
5 23 (4.93%) Cisco Certification
6 18 (3.85%) ISO 27001 Lead Auditor
7 14 (3.00%) PCI QSA
8 11 (2.36%) CREST Certified
8 11 (2.36%) IISP
9 10 (2.14%) CEH
9 10 (2.14%) ISSAP
10 9 (1.93%) CCNA
10 9 (1.93%) CCNP
10 9 (1.93%) CRISC
10 9 (1.93%) Security Cleared
10 9 (1.93%) TOGAF Certification
11 8 (1.71%) SSCP
12 7 (1.50%) CCIE
12 7 (1.50%) CSSLP
12 7 (1.50%) SC Cleared
Quality Assurance & Compliance
1 212 (45.40%) ISO/IEC 27001
2 132 (28.27%) GDPR
3 45 (9.64%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 41 (8.78%) Sarbanes-Oxley
5 26 (5.57%) COBIT
6 22 (4.71%) Cyber Essentials
7 14 (3.00%) ISO 9001
8 13 (2.78%) ISAE 3402
8 13 (2.78%) ISO 22301
8 13 (2.78%) QA
9 12 (2.57%) ISO/IEC 27005
10 11 (2.36%) ISO 31000
11 7 (1.50%) HMG Security Policy Framework
11 7 (1.50%) PSD2
12 6 (1.28%) FedRAMP
12 6 (1.28%) HIPAA
13 5 (1.07%) COSO
14 4 (0.86%) SLA
15 3 (0.64%) PA-DSS
15 3 (0.64%) RMADS
System Software
1 28 (6.00%) Active Directory
2 13 (2.78%) VMware Infrastructure
3 6 (1.28%) Docker
3 6 (1.28%) Oracle RAC
4 4 (0.86%) ISA Server
5 2 (0.43%) ProxySG
5 2 (0.43%) Snort
5 2 (0.43%) VMware ESXi
6 1 (0.21%) Virtual Machines
6 1 (0.21%) VMware NSX
6 1 (0.21%) vSphere
Systems Management
1 12 (2.57%) Puppet
2 11 (2.36%) Nessus
3 10 (2.14%) Ansible
3 10 (2.14%) Trend Micro Deep Security
4 6 (1.28%) Istio
4 6 (1.28%) Kubernetes
4 6 (1.28%) Single Sign-On
4 6 (1.28%) Terraform
5 5 (1.07%) Data Guard
5 5 (1.07%) Red Hat Satellite
5 5 (1.07%) SELinux
6 4 (0.86%) IBM BigFix
6 4 (0.86%) Oracle RMAN
6 4 (0.86%) OSSEC
7 3 (0.64%) Control-M
7 3 (0.64%) FortiGate
7 3 (0.64%) SCCM
8 2 (0.43%) Cisco CUCM
8 2 (0.43%) Cisco UCCX
8 2 (0.43%) Opscode Chef
Vendors
1 53 (11.35%) Microsoft
2 39 (8.35%) Cisco
3 27 (5.78%) Splunk
4 25 (5.35%) Oracle
5 24 (5.14%) Qualys
6 23 (4.93%) IBM
7 18 (3.85%) VMware
8 16 (3.43%) Imperva
9 13 (2.78%) CheckPoint
9 13 (2.78%) Google
10 12 (2.57%) ArcSight
10 12 (2.57%) Red Hat
10 12 (2.57%) Tripwire
11 11 (2.36%) McAfee
12 10 (2.14%) Barracuda Networks
12 10 (2.14%) Centrify
12 10 (2.14%) SAP
12 10 (2.14%) Trend Micro
13 9 (1.93%) Citrix
14 8 (1.71%) CyberArk